search

gamelinux / passivedns

A network sniffer that logs all DNS server replies for use in a passive DNS setup
http://gamelinux.org/
1.67k stars 372 forks source link

Change default BPF #10

Closed elhoim closed 12 years ago

elhoim commented 12 years ago

Change default BPF to '(udp and port 53) or (tcp and port 53)' since it handles udp and tcp

gamelinux commented 12 years ago

Well, the TCP handling is commented out in the code. And I have not debugged it yet, but it segfaults atm. if I try to parse it. Lots of errors from libldns. I would need find some time to look into it. Thanks for reminding me :)

gamelinux commented 12 years ago

Parsing of DNS over TCP is now added. So is DNS over IPv6 (TCP and UDP). Default BPF is changed to '(port 53)'. Issue fixed in commit 128d10bda7995560a95a735e04b5e0e0d48784e1